I have installed Sophos AV on Linux, and on-access scanning is enabled.
When I review the logs, there are entries like 'Threat detected in <path>: Troj/PHP-BB (Open) (The file is still infected).
Usually the path is a temporary folder used in PHP sites, and the file reported does not exist anymore.
I've been reading the SAV for Linux guide, and I cannot see any info regarding putting files detected by on-access scans into quarantine.
How do I enable or configure this?
Or is it on by default and the files in the log do not exist anymore because they were already quarantined?
Thanks in advance!
This thread was automatically locked due to age.
